Re: LAMP uploaded file permissions preventing db upload

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I'm not sure what the security implications would be, but if you added MySQL also to the `nobody` group, it should be able to read the file from that directory. /tmp is generally world-readable, so it's just the file permissions that are causing the problem, as you say.

Previously I've used PHP to do this, just issuing chmod(0755); on the /tmp/file_name within PHP rather than running exec(chmod blah)

But generally, I wouldn't expect allowing MySQL to access 'nobody' files to be a problem - the other way round (allowing it to open User or Root-owned files) would open a huge security hole, of course.

HTH
Cheers - Neil

At 11:45 26/09/2004 +0000, you wrote: 
Message-ID: <20040926024241.29619.qmail@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 25 Sep 2004 19:42:41 -0700 (PDT)
From: Will Cordle <wcordle@xxxxxxxxx>
To: php-db@xxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Subject: LAMP uploaded file permissions preventing db upload

On my LAMP system, I am using the http post method for uploading files from the browser into the
/tmp directory. Then using the MySQL "load file" command to load that file into the database.
Well at least I am trying to.

The upload to the /tmp directory is working fine, but due to file permissions, the load into the
db is failing.

Apache/PHP is running as nobody:nobody (I have tried different groups with no luck)
MySQL is running as mysql:mysql

permissions on /tmp are currently:
drwxrwxrwx   12 root     root         4096 Sep 25 22:17 tmp

permissions on a file that has been uploaded to /tmp are currently:
-rw-------    1 nobody   nobody       255775 Sep 25 22:17 test.csv

If I change the permissions on the file to world-readable the db load works as expected. Any
ideas on how to get Apache/PHP to write the file to /tmp as world-readable would be greatly
appreciated. Of course if I should be taking a different approach, I would be welcome to
recommendations there as well.

Thanks
Will



========================================================
CaptionKit http://www.captionkit.com : Production tools
for accessible subtitled internet media, transcripts
and searchable video. Supports Real Player, Quicktime
and Windows Media Player.

VideoChat with friends online, get Freshly Toasted every
day at http://www.fresh-toast.net : NetMeeting solutions
for a connected world.

--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[Index of Archives]     [PHP Home]     [PHP Users]     [Postgresql Discussion]     [Kernel Newbies]     [Postgresql]     [Yosemite News]
  Powered by Linux